← back
CVE-2009-1900

CVE-2009-1900

EPSS 1.8%
The Configservice APIs in the Administrative Console component in IBM WebSphere Application Server (WAS) 6.0.2 before 6.0.2.35, 6.1 before 6.1.0.25, and 7.0 before 7.0.0.5, when tracing is enabled, allow remote attackers to obtain sensitive information via unspecified use of the wsadmin scripting tool.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://secunia.com/advisories/35301https://exchange.xforce.ibmcloud.com/vulnerabilities/51171https://exchange.xforce.ibmcloud.com/vulnerabilities/52077http://www-01.ibm.com/support/docview.wss?uid=swg27006876http://www-01.ibm.com/support/docview.wss?uid=swg27007951http://www-01.ibm.com/support/docview.wss?uid=swg27014463http://www-1.ibm.com/support/docview.wss?uid=swg1PK84999http://www.securityfocus.com/bid/35405http://www.vupen.com/english/advisories/2009/1464